New Debian simplesamlphp 1.16.3-1+deb10u3A~5.0.9.202412051629 fixes: This update addresses the following issues: 1.16.3-1+deb10u3 (Tue, 03 Dec 2024 11:32:01 -0300) * Non-maintainer upload by the ELTS team. * Fix CVE-2024-52596: XXE vulnerability when loading untrusted XML documents. * Fix CVE-2024-52806: XXE in parsing SAML messages * Add d/salsa-ci.yml using lts-team buster recipe
FTBFS debian/rules build make: Nothing to be done for 'build'. fakeroot debian/rules binary dh_testdir dh_testroot dh_prep dh_installdirs dh_install dh_installdocs dh_installexamples dh_installchangelogs docs/simplesamlphp-changelog.md rm debian/simplesamlphp/usr/share/doc/simplesamlphp/simplesamlphp-changelog.md rm: cannot remove 'debian/simplesamlphp/usr/share/doc/simplesamlphp/simplesamlphp-changelog.md': No such file or directory make: *** [debian/rules:17: install] Error 1 dpkg-buildpackage: error: fakeroot debian/rules binary subprocess returned exit status 2
ucs-patches: 788c0a097 | Fix ftbfs if simplesamlphp in repo-ng 14eadae70 | fixup de48e5648 | fixup Package: simplesamlphp Version: 1.16.3-1+deb10u3A~5.0.9.202412051629 Branch: 5.0-0 Scope: errata5.0-9
--- mirror/ftp/pool/main/s/simplesamlphp/simplesamlphp_1.16.3-1+deb10u2A~5.0.0.202205101009.dsc +++ apt/ucs_5.0-0-errata5.0-9/source/simplesamlphp_1.16.3-1+deb10u3A~5.0.9.202412051629.dsc @@ -1,13 +1,22 @@ -1.16.3-1+deb10u2A~5.0.0.202205101009 [Tue, 10 May 2022 10:09:58 +0200] Univention builddaemon <buildd@univention.de>: +1.16.3-1+deb10u3A~5.0.9.202412051629 [Thu, 05 Dec 2024 17:12:46 -0000] Univention builddaemon <buildd@univention.de>: * UCS auto build. The following patches have been applied to the original source package - 02_change_nutzer_to_benutzer - 03_add_custom_error_messages - 06_extended_error - 10_add_case_insensitive_comparison_for_ldap_attributes - 20_add_samesite_cookie_attribute_support - 21_fix_samesite_cookie_attribute_bug - 22_allow_enabling_of_samesite_none + 01_fix-ftbfs-in-repo-ng.patch + 02_change_nutzer_to_benutzer.quilt + 03_add_custom_error_messages.quilt + 06_extended_error.quilt + 10_add_case_insensitive_comparison_for_ldap_attributes.quilt + 20_add_samesite_cookie_attribute_support.quilt + 21_fix_samesite_cookie_attribute_bug.quilt + 22_allow_enabling_of_samesite_none.quilt + +1.16.3-1+deb10u3 [Tue, 03 Dec 2024 11:32:01 -0300] Santiago Ruano Rincón <santiago@freexian.com>: + + * Non-maintainer upload by the ELTS team. + * Fix CVE-2024-52596: XXE vulnerability when loading untrusted XML + documents. + * Fix CVE-2024-52806: XXE in parsing SAML messages + * Add d/salsa-ci.yml using lts-team buster recipe 1.16.3-1+deb10u2 [Mon, 16 Dec 2019 14:15:00 +0100] Thijs Kinkhorst <thijs@debian.org>: <http://piuparts.knut.univention.de/5.0-9/#5954933347378171545>
For some yet unknown reason the repo-ng built package doesn't generate /usr/share/doc/simplesamlphp/* (AFAICS), which is why I added a workaround to ucs-patches to at least not let the build fail due to that. When I built the package manually that problem did not show up. Not so nice, but that's what we got currently.
f6f481e0a6b | Advisory
OK: bug OK: yaml OK: announce_errata OK: patch OK: piuparts [5.0-9] f6f481e0a6b Bug #57799: Advisory doc/errata/staging/simplesamlphp.yaml | 17 +++++++++++++++++ 1 file changed, 17 insertions(+)
<https://errata.software-univention.de/#/?erratum=5.0x1188>